Jason Snell, writing at Six Colors: Here's one of the weirdest aspects of Tuesday's iPhone launch event: Apple has been less than forthright about the real prices of the iPhone 12 and iPhone 12 mini. At the event, Apple referred to these products as starting at $699 (iPhone 12 mini) and $799 (iPhone 12), but those prices are not actually accurate unless you slap a big asterisk on there. (As Apple does on its marketing pages, because it must.) Here's what's actually happening, at least in the U.S.: Apple has cut deals with AT&T and Verizon that give existing customers of those carriers $30 off their purchases. The actual prices of the two models are $729 and $829, and that's what you'll pay if you're a U.S. subscriber to Sprint, T-Mobile, any smaller pay-as-you-go carriers, or if you want to buy a SIM-free model with no carrier connection at all. (The 12 Pro and 12 Pro Max are the same price on all carriers.) It's embarrassing that Apple is hiding the real price of the iPhone 12.

Apple has poached a key member of Google's Project Zero, a hacking team at Google that has found dozens of critical vulnerabilities in Apple's iOS and other critical Apple software. From a report: Last year, Apple and Google fought over a series of vulnerabilities that Project Zero discovered in iOS, with Apple suggesting that Google was overselling the vulnerabilities. About a year later, Brandon Azad announced on Twitter at the beginning of October that he was leaving Google's elite team of hackers to join Apple. "My teammates at Project Zero have been among the kindest and smartest people I've met, and I've learned so much from them," Azad wrote. "I'll really miss working alongside everyone on the team. Thank you all for these wonderful experiences, and keep on hacking!" Azad has been widely considered one of the best iPhone hackers who didn't work for Apple, being named by Apple in countless security advisories, and presenting highly technical findings on Apple's products at major cybersecurity conferences around the world. Last year, Motherboard profiled Project Zero and revealed that Apple had been trying to poach a colleague of Azad, Ian Beer.

ttyler writes: As MacRumors reports, Apple's new HomePod Mini supports Thread networking technology. "Thread is a low-power IP-based networking technology for connecting Internet of Things (IoT) devices, offering a secure, mesh-based system that makes it easy to build an ecosystem of devices," reports MacRumors. "While Thread is essentially agnostic to the application layers that run on top of it, it can support multiple layers and may play a role in Project Connected Home over IP, the alliance of Apple, Amazon, Google, and other companies that is seeking to make it simpler to build devices compatible with multiple ecosystems such as Siri, Alexa, and Google Assistant." In a footprint on the specs page, Apple says that HomePod mini's Thread support is limited to HomeKit devices, "so the technology can't yet be leveraged cross-platform and it remains to be seen how Apple will embrace Thread going forward," adds MacRumors.

Apple has announced a new version of its HomePod smart speaker, the $99 HomePod mini -- a smaller version of the speaker that shrinks down the original model into a more compact size. The Verge reports: Like the full-size HomePod, the HomePod mini still features a mesh fabric exterior in both black and white colors, along with a small display on top to show the Siri waveform and volume controls. The new model is more of a short, spherical shape, however, instead of the oblong design of the original. The HomePod mini features one main driver, two passive radiators, and an "acoustic waveguide" on the bottom. The new HomePod mini also features an Apple S5 chip, which Apple says allows for "computational audio" processing to adjust how your music sounds 180 times per second. Multiple HomePod mini speakers can play music in sync and "intelligently" create stereo pairing when placed in the same room. Apple is also using the U1 chips that it debuted in last year's iPhones to create a better Handoff experience later this year. Apple said third-party support is coming later this year for Pandora, Amazon Music, and iHeartRadio.

There's also a new "Intercom" feature that allows for customers with multiple HomePod devices in different rooms to communicate throughout the house. "Intercom messages will also appear on connected iPhones, iPads, and Apple Watches (although they won't immediately play out loud like they do on the HomePod mini)," adds The Verge. Preorders for the HomePod Mini start on November 6th and shipping begins on November 16th.

With the iPhone 12 and 12 Pro models no longer shipping with a power adapter, Apple has started selling the 20W USB-C power adapter that was first introduced with the iPad Air on a standalone basis for $19. From a report: The 20W power adapter is included in the box with the iPad Air, but those who want one for use with the new iPhone models will need to shell out $19. All of the new iPhone 12 models and older iPhone models ship only with a USB-C to Lightning cable, with customers expected to provide their own power adapters. Most people likely have several USB-C power adapters on hand from past device purchases, but this will be an inconvenience for those who have few power adapters available already.

At a virtual event on Tuesday, Apple unveiled the new iPhone lineup: the iPhone 12, 12 mini, 12 Pro, and 12 Pro Max. The new iPhones feature recent generation iPad Pro-like design. They all support 5G. The iPhone 12 mini, the most affordable handset in the new lineup, starts at $699. The iPhone 12 Pro Max, the most expensive, starts at $1,099. The company said it is also lowering the price of last year's iPhone 11, which not starts at $599.

More details: Apple debuts iPhone 12 family, focusing on 5G and 5nm chips.

Apple brings back MagSafe, sparks interest in magnetic phone charging.

Apple cuts iPhone XR and iPhone 11 prices by $100, kills iPhone 11 Pro.

A recently released tool is letting anyone exploit an unusual Mac vulnerability to bypass Apple's trusted T2 security chip and gain deep system access. The flaw is one researchers have also been using for more than a year to jailbreak older models of iPhones. But the fact that the T2 chip is vulnerable in the same way creates a new host of potential threats. Worst of all, while Apple may be able to slow down potential hackers, the flaw is ultimately unfixable in every Mac that has a T2 inside. From a report: In general, the jailbreak community haven't paid as much attention to macOS and OS X as it has iOS, because they don't have the same restrictions and walled gardens that are built into Apple's mobile ecosystem. But the T2 chip, launched in 2017, created some limitations and mysteries. Apple added the chip as a trusted mechanism for securing high-value features like encrypted data storage, Touch ID, and Activation Lock, which works with Apple's "Find My" services. But the T2 also contains a vulnerability, known as Checkm8, that jailbreakers have already been exploiting in Apple's A5 through A11 (2011 to 2017) mobile chipsets. Now Checkra1n, the same group that developed the tool for iOS, has released support for T2 bypass.

On Macs, the jailbreak allows researchers to probe the T2 chip and explore its security features. It can even be used to run Linux on the T2 or play Doom on a MacBook Pro's Touch Bar. The jailbreak could also be weaponized by malicious hackers, though, to disable macOS security features like System Integrity Protection and Secure Boot and install malware. Combined with another T2 vulnerability that was publicly disclosed in July by the Chinese security research and jailbreaking group Pangu Team, the jailbreak could also potentially be used to obtain FileVault encryption keys and to decrypt user data. The vulnerability is unpatchable, because the flaw is in low-level, unchangeable code for hardware. "The T2 is meant to be this little secure black box in Macs -- a computer inside your computer, handling things like Lost Mode enforcement, integrity checking, and other privileged duties," says Will Strafach, a longtime iOS researcher and creator of the Guardian Firewall app for iOS. "So the significance is that this chip was supposed to be harder to compromise -- but now it's been done."

Epic Games "did not win its preliminary injunction in its antitrust action against Apple, which would have forced Apple to allow Fortnite back onto the iPhone, iPad, and Mac," reports BGR, calling it "the decision we warned you about a few weeks ago." Gonzalez Rogers hinted during the injunction relief hearing a few weeks ago that she wasn't inclined to side with Epic when it comes to Fortnite. She pointed out at the time that Epic lied in its business relationship with Apple. "You did something, you lied about it by omission, by not being forthcoming. That's the security issue. That's the security issue!" Gonzalez Rogers told Epic. "There are a lot of people in the public who consider you guys heroes for what you guys did, but it's still not honest...."

Epic engineered a huge PR stunt to turn gamers against Apple over the expected Fortnite ban and then sued Apple for anti-competitive practices at the same time. Even if the antitrust case might have merit on its own, this doesn't change the fact that Epic breached its contract... The judge clarified that Epic has breached a contract unilaterally and cannot claim that it did it because of monopoly concerns. Judge Rogers also said that Epic's failure to show it's willing to work with Apple and the court to have the game reinstated proves that Epic isn't necessarily concerned with the well-being of iOS users. "Epic Games cannot simply exclaim 'monopoly' to rewrite agreements giving itself unilateral benefit..."
Epic did receive some good news in the ruling. "Epic Games is grateful that Apple will continue to be barred from retaliating against Unreal Engine and our game development customers," the company said in a statement which was quoted by Thurrott.com. "We will continue developing for Apple's platforms and pursue all avenues to end Apple's anti-competitive behavior."

And the same site also quotes Apple's own statement on the ruling. "We are grateful that the Court recognized that Epic's actions were not in the best interests of its own customers and that any problems they may have encountered were of their own making when they breached their agreement."

Covid-19 contact-tracing apps that rely on an API developed by Apple and Google and bluetooth technology cannot accurately measure the distance between users on public transport, a recently released study from Trinity College Dublin has found. From a report: The researchers of the study first tested the API on a group of volunteers who switched seats every fifteen minutes in a Dublin tram. They then ran the collected data through the detection rules of the Swiss, German, and Italian contact-tracing apps to see how often they correctly identified contact between users. Based on this, they found that the chance of an accurate detection was "similar to that of triggering notifications by randomly selecting from the participants in our experiments, regardless of proximity."

So, no better than random. This finding is the latest example of mounting skepticism among experts regarding the effectiveness of the technology underlying the apps which have been widely released -- but less widely used -- by governments across Europe and more recently the United States. Most contact-tracing apps in Europe and the United States use Apple and Google's exposure notification API, which in turn relies on in-built wireless Bluetooth technology to estimate the distance between two users and whether they've been in contact. What actually constitutes 'contact' is set by the developers of whichever app calls the API, but it's usually defined as being within 2 meters (~6.5 feet) of another user for at least 15 minutes. Once a user uploads a positive test result to a contact-tracing app, it notifies all contacted users and lets them know that they've been at risk of infection.

An anonymous reader quotes a report from Ars Technica: For months, Apple's corporate network was at risk of hacks that could have stolen sensitive data from potentially millions of its customers and executed malicious code on their phones and computers, a security researcher said on Thursday. Sam Curry, a 20-year-old researcher who specializes in website security, said that, in total, he and his team found 55 vulnerabilities. He rated 11 of them critical because they allowed him to take control of core Apple infrastructure and from there steal private emails, iCloud data, and other private information.

Apple promptly fixed the vulnerabilities after Curry reported them over a three-month span, often within hours of his initial advisory. The company has so far processed about half of the vulnerabilities and committed to paying $288,500 for them. Once Apple processes the remainder, Curry said, the total payout might surpass $500,000. "If the issues were used by an attacker, Apple would've faced massive information disclosure and integrity loss," Curry said in an online chat a few hours after posting a 9,200-word writeup titled We Hacked Apple for 3 Months: Here's What We Found. "For instance, attackers would have access to the internal tools used for managing user information and additionally be able to change the systems around to work as the hackers intend." An Apple representative issued a statement that said: "At Apple, we vigilantly protect our networks and have dedicated teams of information security professionals that work to detect and respond to threats. As soon as the researchers alerted us to the issues they detail in their report, we immediately fixed the vulnerabilities and took steps to prevent future issues of this kind. Based on our logs, the researchers were the first to discover the vulnerabilities so we feel confident no user data was misused. We value our collaboration with security researchers to help keep our users safe and have credited the team for their assistance and will reward them from the Apple Security Bounty program."

As Facebook, Amazon, Apple and Google are being targeted by the House Judiciary Committee for abusing American antitrust law, one major company has managed to escape the glare: Microsoft. That's because they are now "the adult in the room in some ways on this issue," said Rep. Pramila Jayapal (D., Wash.), a Democratic member of the House Antitrust subcommittee, which has been diving into Big Tech's practices for the last 16 months. Yahoo Finance reports: Jayapal's Seattle district includes Amazon's headquarters and the company's practices, specifically how it uses data from third-party sellers, has been one of her major focuses. It's Congress's job to make sure "a company like Amazon can't just put a small business that produces diapers out of business by taking all of that market information that nobody else has access to, and using it to subsidize losses and push small companies out," Jayapal told Yahoo Finance.

She has also had a less-than-cordial relationship with Amazon CEO Jeff Bezos. During a Yahoo Finance interview this summer, Jayapal said she had never before met the billionaire. They did talk virtually in July when she grilled him during the hearings, but she said this week that communication since then has been sparse. "I've had an open door policy to speaking with Mr. Bezos and have invited him many times," she said. Though she has met with Amazon senior managers.

"The lesson here is self-regulation doesn't work," said Jayapal. She points to Microsoft as an example that Amazon should follow, of successfully working with the government. In 1998, Microsoft was the subject of Congressional antitrust inquiries and many wanted to break the company up. In the end, Bill Gates was able to avoid a breakup by promising to change his company's ways. The company had to "change its culture, change its lines of business," Jayapal said. The process of government involvement led to Microsoft creating a "platform for other small companies to thrive," she said. Jayapal also pointed to the Microsoft example as to why breaking up a company isn't always the best option. "Perhaps in retrospect, Amazon, after we've regulated them, after we've put through some of the recommendations that are in the report, we'll look back and say, "You know what? It's a good thing that that happened," she said.

Apple told CNBC that it will extend some Apple TV+ subscriptions on a free one-year trial for three additional months. From the report: When Apple TV+ launched last fall, Apple bundled a free one-year subscription with the purchase of an Apple product, immediately boosting the number of people who could watch the streaming service. The first of those trial subscriptions were previously going to expire at the start of November, meaning that people on the one-year trial who had not cancelled were going to be charged $4.99 per month for the streaming service.

Now subscribers whose trial expires before February will get three additional months of Apple TV+ for free. This means that someone who bought an iPhone on December 1 and activated Apple TV+ on the same day will have access to the service through March 1, when billing starts. Apple has not revealed the number of Apple TV+ subscribers. The service has fewer TV shows and movies than rivals like Disney+, which surpassed 60 million subscribers in August after launching last November. Netflix has more than 190 million subscribers around the world, it said in July. But unlike those services, Apple TV+ doesn't have a back catalog of reruns.

An anonymous reader shares a report: On Tuesday, Congress revealed whether it thinks Amazon, Apple, Facebook, and Google are sitting on monopolies. In some cases, the answer was yes. But also, one app developer revealed to Congress that it -- just like WordPress -- had been forced to monetize a largely free app. That developer testified that Apple had demanded in-app purchases (IAP), even though Apple had approved its app without them two years earlier -- and that when the dev dared send an email to customers notifying them of the change, Apple threatened to remove the app and blocked all updates. That developer was ProtonMail, makers of an encrypted email app, and CEO Andy Yen had some fiery words for Apple in an interview with The Verge this week. We've known for months that WordPress and Hey weren't alone in being strong-armed by the most valuable company in the world, ever since Stratechery's Ben Thompson reported that 21 different app developers quietly told him they'd been pushed to retroactively add IAP in the wake of those two controversies. But until now, we hadn't heard of many devs willing to publicly admit it. They were scared.

And they're still scared, says Yen. Even though Apple changed its rules on September 11th to exempt "free apps acting as a stand-alone companion to a paid web based tool" from the IAP requirement -- Apple explicitly said email apps are exempt -- ProtonMail still hasn't removed its own in-app purchases because it fears retaliation from Apple, he says. He claims other developers feel the same way: "There's a lot of fear in the space right now; people are completely petrified to say anything." [...] "For the first two years we were in the App Store, that was fine, no issues there," he says. (They'd launched on iOS in 2016.) "But a common practice we see ... as you start getting significant uptake in uploads and downloads, they start looking at your situation more carefully, and then as any good Mafia extortion goes, they come to shake you down for some money."

In a not-so-subtle dig at Apple and Google, Microsoft today announced a series of "principles" for its Windows 10 App Store -- including letting users choose their own payment system for in-app purchases -- that it says should serve as a model for other app stores. From a report: The move comes as antitrust regulators in the U.S. and around the world are spotlighting how both Apple and Google manage their mobile platforms and as some developers charge them with running their app stores unfairly. In addition to offering developers the option to use an alternative payment mechanism for in-app purchases, Microsoft pledged that it will, among other things: allow competing app stores; hold its own apps to the same standards as those of other companies; allow app makers to decide what they do and don't want to sell within their app; and allow any developer in its store "as long as it meets objective standards and requirements, including those for security, privacy, quality, content, and digital safety."

The House Judiciary Committee says Amazon, Apple, Facebook and Google are monopolies -- but its new plan to rein in their power won't change anything overnight. Instead, Democratic lawmakers propose to rewrite American antitrust law in order to restructure the U.S.'s most successful and powerful industry over time. From a report: The report is a long pass down the field of the tech industry's unfolding conflicts. It could be game-changing -- but it also might never get completed. The report, which runs more than 450 pages, proposes broad updates to antitrust law, including: limiting companies' ability to compete unfairly against third parties on their own platforms by either requiring online marketplaces to be independently run businesses or establishing rules for how such marketplaces can be organized; blocking online platforms from giving themselves preferential treatment or playing favorites with other content providers; requiring social networks to be interoperable so that people can communicate across platforms and carry their data over from one platform to another; directing antitrust enforcers to assume that an acquisition by a dominant tech firm is anticompetitive unless proven otherwise; and allowing news publishers to team up to negotiate against tech platforms looking to carry their content.

Committee investigators spent 16 months reviewing mountains of emails, memos and other evidence to reach these conclusions about the companies:
Amazon: The internet retail giant achieved its dominant position in part through acquiring competitors; has a monopoly over and mistreats third-party sellers; and has created a conflict of interest through its double role as an operator of its marketplace and also a seller there.
Apple: The report says Apple exerts monopoly power over software distribution to more than half the mobile devices in the U.S. It accuses the company of exploiting rivals by levying commissions and fees and copying apps, and says Apple gives preference to its own apps and services.
Facebook: The social media network has monopoly power in the social networking space, the report finds, and takes a "copy, acquire, kill" approach to would-be rivals such as WhatsApp and Instagram, both of which it bought in the early 2010s.
Google: The search engine has a monopoly in the general online search and search advertising markets, according to the report, maintaining its position through anticompetitive tactics such as undermining vertical search providers and acquiring rivals.

"To put it simply, companies that once were scrappy, underdog startups that challenged the status quo have become the kinds of monopolies we last saw in the era of oil barons and railroad tycoons," write the authors of the report. The other side: The companies all deny that they hold monopoly positions or that their practices and acquisitions violate antitrust law, and argue that the tech industry remains healthily competitive.

Facebook Chief Revenue Officer David Fischer said Tuesday that the economic models that rely on personalized advertising are "under assault" as Apple readies changes that would limit the ability of Facebook and other companies to target ads and estimate how well they work. Apple frames the change as preserving users' privacy, rather than as an attack on the advertising industry, and has been promoting its privacy features as a core reason to get an iPhone. CNBC reports: The change to Apple's identifier for advertisers, or IDFA,will give iPhone users the option to block tracking when opening an app. It was originally planned for iOS 14, the version of the iPhone operating system that was released last month. But Apple said last month it was delaying the rollout until 2021 "to give developers time to make necessary changes." Fischer, speaking at a virtual Advertising Week session Tuesday morning, spoke about the changes after being asked about Facebook's vulnerability to the companies that control mobile platforms, like Apple and Google, which runs Android.

Fischer argued that though there's "angst and concern" about the risks of technology, personalized and targeted advertising has been essential to help the internet grow. "The economic model that not just we at Facebook, but so many businesses rely on, this model is worth preserving, one that makes content freely available, and the business that makes it run and hum, is via advertising," he said. "And right now, frankly, some of that is under assault, that the very tools that entrepreneurs, that businesses are relying on right now are being threatened. To me, the changes that Apple has proposed, pretty sweeping changes, are going to hurt developers and businesses the most."

Fischer said the company plans to "defend" its existing model. "There are different business models out there. Apple has one that sells luxury hardware or subscription services, mainly to consumers like us who are fortunate enough to have a lot of discretionary income in some of the world's wealthiest countries," he said. "That's fine, but I don't think it's appropriate to then dictate that has to be other business models, and the one that we believe is so valuable, one that relies on advertising, in our case, personalized ads, to enable free products, enable businesses to launch and grow and thrive, we're going to defend that. And we think it really important that not just we but our industry does that."

Apple just sent out invites for its upcoming hardware event, all but confirming the arrival of the next iPhone. From a report: The event is scheduled nearly a month to the day after the its last big event, which gave us the Apple Watch Series 6 and two new iPads. A new iPhone was conspicuously absent from the proceedings -- not an entirely unexpected turn of events, of course. CEO Tim Cook confirmed earlier this year that there would be a delay the arrival of the company's new flagship, owing to COVID-19 hardware supply chain issues. The iPhone 12 is set to finally deliver 5G connectivity to Apple's product line, coupled with a new design, chip and a push to OLED for all entries in the line.

As promised, the Apple TV is finally starting to play YouTube videos in 4K -- with caveats. From a report: Users on Reddit and elsewhere are starting to see YouTube 4K support enabled on the media hub when it's using at least tvOS 14. However, you can only watch in Ultra HD at 30 frames per second, and without HDR. Don't expect to make full use of that posh new TV just yet, although 60FPS video will play at up to 1440p. It also said current iPads and iPhones should support 4K video with 60FPS and HDR, although support looks to be be inconsistent at this stage. Apple TV support also isn't universal, at least not yet. YouTube appears to be delivering the update remotely rather than tying it to an app release.

Apple has confirmed several problems including "increased battery drain" for some users who upgraded their iPhone to iOS 14. But ZDNet warns Apple's proposed solution "sounds pretty drastic."

Forbes reports: In an official post, Apple reveals seven significant data and battery-related problems with iOS 14 and watchOS 7, and the company states the only fix is to "erase all content and settings from your iPhone".

Breaking these down, Apple classifies six as related to its Activity, Health and Fitness apps as well as the broader problem of "Increased battery drain on your iPhone or Apple Watch." The latter will not be a surprise to anyone who has seen the growing number of complaints directed at the company's @AppleSupport Twitter account since iOS 14 was released...

On the plus side, Apple's belief that these problems can be fixed without an iOS update is good news. That said, a complete data wipe is also the nuclear option, so Apple is not messing around... I would also be amazed if iOS 14.0.2 is not being fast tracked as we speak.

Slashdot reader spth writes: At a Canadian recycling firm hired by Apple to scrap about 600,000 Apple devices, 100,000 of them were actually resold to other companies that made working devices from the parts.

Apple now sues the recycling company for the money made from the sale plus 31 million Canadian dollars. The recycling company claims that the devices were resold by three rogue employees that pocketed the profits.
The re-sold devices included iPhones, iPads and Apple Watches, according to news reports, and though they were being re-sold in China, Apple still complains that at least 18% of the devices they'd shipped to the company they later found active on wireless carrier networks.

Apple also says the re-sales dampened demand for new Apple products, hurt their brand by keeping products intended for destruction out on the market — and created a safety issue for consumers.